268811
|
- |
|
tac
|
vista
|
Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via ".." sequences in …
|
NVD-CWE-Other
|
CVE-2005-3040
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268812
|
- |
|
multitheftauto
|
multitheftauto
|
MultiTheftAuto 0.5 patch 1 and earlier does not properly verify client privileges when running command 40, which allows remote attackers to change or delete the message of the day (motd.txt).
|
NVD-CWE-Other
|
CVE-2005-3064
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268813
|
- |
|
eric_integrated_development_environment
|
eric_integrated_development_environment
|
Unspecified vulnerability in Eric Integrated Development Environment (eric3) before 3.7.2 has unknown impact and attack vectors related to a "potential security exploit."
|
NVD-CWE-Other
|
CVE-2005-3068
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268814
|
- |
|
hylafax
|
hylafax
|
xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file.
|
NVD-CWE-Other
|
CVE-2005-3069
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268815
|
- |
|
hylafax
|
hylafax
|
HylaFax 4.2.1 and earlier does not create or verify ownership of the UNIX domain socket, which might allow local users to read faxes and cause a denial of service by creating the socket using the hyl…
|
NVD-CWE-Other
|
CVE-2005-3070
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268816
|
- |
|
rsyslog
|
rsyslogd
|
SQL injection vulnerability in rsyslogd in RSyslog before 1.0.1 and before 1.10.1 allows remote attackers to execute arbitrary SQL commands via crafted syslog messages.
|
NVD-CWE-Other
|
CVE-2005-3074
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268817
|
- |
|
mpc-donkey
|
zengaia
|
SQL injection vulnerability in Zengaia before 0.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-3075
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268818
|
- |
|
simplog
|
simplog
|
Simplog 0.9.1 might allow remote attackers to execute arbitrary SQL commands or trigger SQL error messages via invalid (1) pid, (2) blogid, (3) cid, or (4) m parameters to archive.php, or the (5) blo…
|
NVD-CWE-Other
|
CVE-2005-3076
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268819
|
- |
|
microsoft
|
ie_for_macintosh
|
Microsoft Internet Explorer 5.2.3 for Mac OS allows remote attackers to cause a denial of service (crash) via a web page with malformed attributes in a BGSOUND tag, possibly involving double-quotes i…
|
NVD-CWE-Other
|
CVE-2005-3077
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268820
|
- |
|
punbb
|
punbb
|
Cross-site scripting (XSS) vulnerability in PunBB before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the "forgotten e-mail" feature.
|
NVD-CWE-Other
|
CVE-2005-3078
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|